afd0b6d41a8069e666f82752b011a84570f9a70fe2f2994b7db3c1f7be9a577e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

afd0b6d41a8069e666f82752b011a84570f9a70fe2f2994b7db3c1f7be9a577e
Size

111KB
MD5

02fea4b41ab86cd4f3630a1a63403640
SHA1

baef42aa4e6dc5068428d6a0e425dff81369f369
SHA256

afd0b6d41a8069e666f82752b011a84570f9a70fe2f2994b7db3c1f7be9a577e
SHA512

478f30e958d1171bca1d08d559245b30f613c7a8b756a72473c22f9416b0b42d2849cd79c0f3a62dd53415d283ad53cc6dc355e6f75a53715b29ea0b9c03d00f
SSDEEP

1536:xgdCkXf33T1jEE/cyY7rbFOXcVRrQbvv4JDdlng5P2Ckxa4LhVI72bf0UEgfYTL:x6Cy1AucB7rbipbv4r0kfLhVPf0UEgAL

Score

N/A

Malware Config

Signatures

Files

afd0b6d41a8069e666f82752b011a84570f9a70fe2f2994b7db3c1f7be9a577e
.exe windows x86

c3c72c0d73a7205467935bb5701794d0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

MoveFileA
SuspendThread
LocalFree
lstrcpynA
QueryDosDeviceA
CopyFileExA
GetPrivateProfileIntA
GetProfileIntW
AddLocalAlternateComputerNameW
CreateDirectoryA
QueueUserWorkItem
SetThreadPriorityBoost

Sections

.text
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

rdata
Size: - Virtual size: 64KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 97KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

cduupqo
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE